This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf repo-rpki.idnic.net/repo/IDNIC-ID/1/AS151505.roa File: AS151505.roa (raw, json) Hash identifier: 4bkasRaReOAfdeSzAjfkC7JTVpeQ0TDT+ku0WyuXW4w= Subject key identifier: CB:55:8E:AF:92:F9:DB:E6:9C:B7:09:82:83:A9:2A:08:A7:34:67:57 Certificate issuer: /CN=A91862140000/serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Certificate serial: 10ABF9513D937A204E2E62814090B6A6DD8A4AA0 Authority key identifier: 60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS151505.roa Signing time: Sun 11 Jan 2026 09:00:00 +0000 ROA not before: Sun 11 Jan 2026 08:55:00 +0000 ROA not after: Sun 10 Jan 2027 09:00:00 +0000 asID: 151505 IP address blocks: 161.248.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 28 Jan 2026 21:04:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:ab:f9:51:3d:93:7a:20:4e:2e:62:81:40:90:b6:a6:dd:8a:4a:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91862140000, serialNumber=60F8BE9C16625C424B269EE06C64A83BAB8506D4 Validity Not Before: Jan 11 08:55:00 2026 GMT Not After : Jan 10 09:00:00 2027 GMT Subject: CN=CB558EAF92F9DBE69CB7098283A92A08A7346757 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:a2:40:b8:2e:b9:d7:dc:16:0a:e9:ec:4f:f9: 5e:2b:a5:30:45:6a:76:7e:61:70:2e:ec:1b:bc:0f: 57:5a:ef:7d:07:ac:6a:71:38:fa:90:35:c1:8a:c0: 8d:80:87:55:d7:79:2b:a8:94:62:a9:da:5e:1e:7a: 41:a2:6d:a6:e2:72:5e:64:6e:75:3c:8e:e3:92:98: 10:e9:c0:f4:74:98:0c:3b:47:2e:5c:41:09:c9:35: ec:18:eb:3b:66:ea:a5:c0:09:85:4b:af:e6:f8:70: f1:11:e8:1d:7b:2e:ed:57:f8:24:78:ee:d8:ca:d4: 87:38:55:b8:f0:93:3f:f0:d4:22:b6:e1:9a:d4:60: b8:b5:75:61:7f:2a:d7:98:50:78:3d:3b:26:7c:79: 3d:84:f8:48:1c:d5:e8:c8:29:6e:6c:d1:3e:e6:70: 09:be:54:99:cc:e3:ff:d5:00:dc:d3:22:64:c2:a7: 9f:3e:f8:5b:2c:86:86:69:0a:3d:fc:df:c9:bf:ca: 69:31:9e:d8:81:a4:02:78:c4:47:cd:57:a5:72:8e: 38:96:a0:dc:5e:16:ee:f3:aa:54:49:f4:0e:4a:eb: 64:ef:24:3a:23:04:20:9e:f2:14:74:b3:33:cb:9e: 6d:5a:b5:3c:3f:4b:db:83:19:f6:65:b1:b7:e8:9b: 5e:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:55:8E:AF:92:F9:DB:E6:9C:B7:09:82:83:A9:2A:08:A7:34:67:57 X509v3 Authority Key Identifier: keyid:60:F8:BE:9C:16:62:5C:42:4B:26:9E:E0:6C:64:A8:3B:AB:85:06:D4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/60F8BE9C16625C424B269EE06C64A83BAB8506D4.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/YPi-nBZiXEJLJp7gbGSoO6uFBtQ.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/1/AS151505.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.248.206.0/24 Signature Algorithm: sha256WithRSAEncryption 89:a9:d5:43:a7:bf:89:d5:4e:e1:91:4b:6c:d5:84:6d:3e:58: 07:f1:cc:18:5e:99:8f:d1:ce:9f:28:97:05:83:ca:07:19:84: ca:4d:3c:7b:b2:40:92:47:f6:cd:17:aa:4e:ed:c1:5c:f0:21: 1a:5c:c0:09:c5:05:cc:92:ab:36:fe:95:19:00:c3:a0:b4:c4: 59:1c:be:20:80:e2:7f:02:9f:2f:3c:8e:cb:ce:98:8c:cd:64: 0c:37:4f:11:f4:cb:ef:61:ab:f6:f6:da:30:ce:f4:51:0e:24: 5b:1b:2f:b5:43:63:dc:4f:e8:a9:33:9e:7c:16:8c:c3:59:56: 19:ab:7b:b9:87:f9:b3:30:b6:1e:b8:05:87:52:7f:fa:89:ea: 28:9b:b5:2d:cb:57:a0:ea:42:e5:aa:12:8f:c6:a0:0a:be:19: f4:78:4f:f1:89:45:7f:77:a1:29:3b:a1:7b:c4:96:d6:6e:00: ff:9f:a7:8c:e7:22:bb:d1:d8:b8:2e:44:f3:d7:74:03:27:97: 22:48:03:0e:eb:d7:32:00:95:57:8b:ef:f0:84:4b:d8:8b:91: c7:f7:8b:98:dc:05:79:35:bd:e5:0f:48:16:35:ce:e5:d8:8f: 69:ee:21:85:ec:fe:d5:fe:7d:5a:4d:a6:74:ef:89:dd:f2:b5: 9b:41:c1:b7 -----BEGIN CERTIFICATE----- MIIE3TCCA8WgAwIBAgIUEKv5UT2TeiBOLmKBQJC2pt2KSqAwDQYJKoZIhvcNAQEL BQAwSjEVMBMGA1UEAwwMQTkxODYyMTQwMDAwMTEwLwYDVQQFEyg2MEY4QkU5QzE2 NjI1QzQyNEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0MB4XDTI2MDExMTA4NTUwMFoX DTI3MDExMDA5MDAwMFowMzExMC8GA1UEAxMoQ0I1NThFQUY5MkY5REJFNjlDQjcw OTgyODNBOTJBMDhBNzM0Njc1NzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAPGiQLguudfcFgrp7E/5XiulMEVqdn5hcC7sG7wPV1rvfQesanE4+pA1wYrA jYCHVdd5K6iUYqnaXh56QaJtpuJyXmRudTyO45KYEOnA9HSYDDtHLlxBCck17Bjr O2bqpcAJhUuv5vhw8RHoHXsu7Vf4JHju2MrUhzhVuPCTP/DUIrbhmtRguLV1YX8q 15hQeD07Jnx5PYT4SBzV6MgpbmzRPuZwCb5Umczj/9UA3NMiZMKnnz74WyyGhmkK Pfzfyb/KaTGe2IGkAnjER81XpXKOOJag3F4W7vOqVEn0DkrrZO8kOiMEIJ7yFHSz M8uebVq1PD9L24MZ9mWxt+ibXp0CAwEAAaOCAdAwggHMMB0GA1UdDgQWBBTLVY6v kvnb5py3CYKDqSoIpzRnVzAfBgNVHSMEGDAWgBRg+L6cFmJcQksmnuBsZKg7q4UG 1DAOBgNVHQ8BAf8EBAMCB4AwaQYDVR0fBGIwYDBeoFygWoZYcnN5bmM6Ly9yZXBv LXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS82MEY4QkU5QzE2NjI1QzQy NEIyNjlFRTA2QzY0QTgzQkFCODUwNkQ0LmNybDB+BggrBgEFBQcBAQRyMHAwbgYI KwYBBQUHMAKGYnJzeW5jOi8vcnBraS5hcG5pYy5uZXQvcmVwb3NpdG9yeS9CM0Ey NEYyMDFENjYxMUUyOEFDODgzN0M3MkZEMUZGMi9ZUGktbkJaaVhFSkxKcDdnYkdT b082dUZCdFEuY2VyMFQGCCsGAQUFBwELBEgwRjBEBggrBgEFBQcwC4Y4cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vSUROSUMtSUQvMS9BUzE1MTUwNS5y b2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4w DAQCAAEwBgMEAKH4zjANBgkqhkiG9w0BAQsFAAOCAQEAianVQ6e/idVO4ZFLbNWE bT5YB/HMGF6Zj9HOnyiXBYPKBxmEyk08e7JAkkf2zReqTu3BXPAhGlzACcUFzJKr Nv6VGQDDoLTEWRy+IIDifwKfLzyOy86YjM1kDDdPEfTL72Gr9vbaMM70UQ4kWxsv tUNj3E/oqTOefBaMw1lWGat7uYf5szC2HrgFh1J/+onqKJu1LctXoOpC5aoSj8ag Cr4Z9HhP8YlFf3ehKTuhe8SW1m4A/5+njOciu9HYuC5E89d0AyeXIkgDDuvXMgCV V4vv8IRL2IuRx/eLmNwFeTW95Q9IFjXO5diPae4hhez+1f59Wk2mdO+J3fK1m0HB tw== -----END CERTIFICATE-----Generated at Mon Jan 26 03:30:18 2026 by rpki-client